CN112202882B - Transmission method, client and transmission system - Google Patents
Transmission method, client and transmission system Download PDFInfo
- Publication number
- CN112202882B CN112202882B CN202011056912.2A CN202011056912A CN112202882B CN 112202882 B CN112202882 B CN 112202882B CN 202011056912 A CN202011056912 A CN 202011056912A CN 112202882 B CN112202882 B CN 112202882B
- Authority
- CN
- China
- Prior art keywords
- server
- client
- transmission channel
- information
- established
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/104—Peer-to-peer [P2P] networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/163—In-band adaptation of TCP data exchange; In-band control procedures
Abstract
The application discloses a transmission method, a client and a transmission system, wherein the method comprises the following steps: sharing first information by utilizing a first transmission channel established between a client and a server; creating a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel; the first transmission channel is a transmission channel established in a point-to-point mode. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
Description
Technical Field
The present application relates to the field of streaming processing technologies, and in particular, to a transmission method, a client, and a transmission system.
Background
The Web page instant messaging webRTC (Web Real-Time Communication) is used as a novel protocol for video conference and remote chat, provides a stable data transmission method in the data transmission of a wide area network, and has the advantages of data encryption, network rate prediction and the like. Specifically, signaling forwarding between two transmission ends is realized by erecting a signaling server, and then multimedia data is transmitted through a data transmission channel, so that the signaling and data transmission safety is improved.
However, if data transmission similar to WebRTC is to be implemented in the local area network, forwarding devices similar to the signaling server need to be erected in the local area network, but no matter a client or a server is erected in the local area network, a certificate used in a communication process is hidden danger of being leaked, and thus, forwarding devices similar to the signaling server cannot be erected in the local area network.
Therefore, a technical solution for realizing secure data transmission between a client and a server in a local area network is needed.
Disclosure of Invention
In view of the above, the present application provides a transmission method, a client and a transmission system, including:
a method of transmission, comprising:
sharing first information by utilizing a first transmission channel established between a client and a server;
creating a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel;
the first transmission channel is a transmission channel established in a point-to-point mode.
In the above method, preferably, the first transmission channel is established by:
broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information;
wherein the first decryption information at least comprises the communication address of the server.
The method is preferable, wherein the first encryption information is obtained based on an encryption operation of an agreed first key.
In the method, preferably, after the first transmission channel is established, the server allocates client identification information to the client.
Preferably, the method for sharing the first information by using the first transmission channel established between the client and the server includes:
the server side sends the server side identification information to the client side through the first transmission channel;
the server and the client share respective port information through the first transmission channel, and the port information is determined based on a predetermined communication protocol;
wherein the server identification information and the port information are encrypted by a first key in the first transmission channel.
Preferably, the method shares the first information by using a first transmission channel established between the client and the server, and further includes:
the client and the server share second encryption information through the first transmission channel, the second encryption information is obtained by encrypting a second key through a first key, and the second key is used for encrypting the multimedia data.
Preferably, the method for creating a second transmission channel between the client and the server based on the first information includes:
and creating a second transmission channel between the client and the server based on the respective port information and the identification information of the client and the server.
A method of transmission, comprising:
sharing first information by utilizing a first transmission channel established between a first terminal and a second terminal; the first terminal and the second terminal are in the same local area network, and the processing capacity of the first terminal is weaker than that of the second terminal;
creating a second transmission channel between the first terminal and the second terminal based on the first information so that the second terminal can transmit multimedia data to the first terminal through the second transmission channel; wherein the multimedia data is data related to a game application configured on the second terminal;
the first transmission channel is a transmission channel established in a point-to-point mode.
A transmission apparatus, comprising:
the information sharing unit is used for sharing first information by utilizing a first transmission channel established between the client and the server;
a channel creating unit, configured to create a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel;
the first transmission channel is a transmission channel established in a point-to-point mode.
Preferably, the above apparatus, the channel creating unit is further configured to: broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information;
wherein the first decryption information at least comprises the communication address of the server.
A client, comprising:
a memory for storing an application program and data generated by the application program running;
a processor for executing the application to implement: sharing first information by utilizing a first transmission channel established between the server side and the server side; creating a second transmission channel between the server side and the server side based on the first information so as to obtain the multimedia data transmitted by the server side through the second transmission channel; the first transmission channel is a transmission channel established in a point-to-point mode.
A transmission system, comprising:
the system comprises a client and a server, wherein a first transmission channel is established between the client and the server, the first transmission channel is established in a point-to-point mode, and the system comprises:
the client and the server share first information by using the first transmission channel; and the client and the server create a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel.
According to the technical scheme, the transmission method, the client and the transmission system disclosed by the application share the first information by utilizing the first transmission channel established between the client and the server in a point-to-point mode, and further establish the second transmission channel capable of transmitting the multimedia data between the client and the server based on the first information, so that the safe transmission of the multimedia data from the server to the client is realized. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present application, and it is obvious for those skilled in the art to obtain other drawings without creative efforts.
Fig. 1 is a flowchart of a transmission method according to an embodiment of the present application;
FIG. 2 is a diagram of an implementation architecture of an embodiment of the present application;
fig. 3 and fig. 4 are partial flow charts of a transmission method according to an embodiment of the present application;
fig. 5 and fig. 6 are exemplary diagrams respectively illustrating a specific scenario in which the embodiment of the present application is applied;
fig. 7 is a schematic structural diagram of a transmission device according to a second embodiment of the present application;
fig. 8 is a schematic structural diagram of an electronic device according to a third embodiment of the present application;
fig. 9 is a schematic structural diagram of a transmission system according to a fourth embodiment of the present application;
fig. 10 and fig. 11 are exemplary diagrams respectively illustrating that the embodiment of the present application is applied to a game scene.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
As shown in fig. 1, which is an implementation flowchart of a transmission method provided in an embodiment of the present application, the method in this embodiment may be applied to a client, such as a mobile phone used by a game player or a pad of a participant in a teleconference, or the method in this embodiment may also be applied to a server, such as a computer configured with a game application or a conference server of a conference host in a teleconference. The technical scheme in the embodiment is mainly used for improving the data transmission safety between the client and the server.
Specifically, the method in this embodiment may include the following steps:
step 101: the first information is shared by a first transmission channel established between the client and the server.
The first transmission channel is a transmission channel established between the client and the server in a point-to-point manner, and encrypted transmission can be performed in the first transmission channel based on a pre-agreed first key. Based on the method, the first information can be safely shared between the client and the server in the first transmission channel by using the first key, and the processing capacity of the client is weaker than that of the server.
Specifically, the first transmission channel may be a socket connection based on a transmission Control protocol tcp (transmission Control protocol) established by a handshake protocol.
Step 102: and creating a second transmission channel between the client and the server based on the first information.
After the second transmission channel is created, the server can transmit the multimedia data to the client through the second transmission channel, and of course, the client can also transmit the multimedia data to the server through the second transmission channel.
It should be noted that the multimedia data may be game data stream data or conference data stream data, and these data are transmitted using the secure second transmission channel, so as to improve security.
It can be seen from the foregoing solution that, in the transmission method provided in the first embodiment of the present application, the first transmission channel established between the client and the server in a point-to-point manner is used to share the first information, and then the second transmission channel capable of transmitting the multimedia data is established between the client and the server based on the first information, so that the secure transmission of the multimedia data from the server to the client is achieved. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
In one implementation, the first transmission channel between the client and the server may be established by:
the method comprises the steps that first encryption information is broadcasted in networks where a server side and a client side are located, the first encryption information can be information obtained by encrypting a communication address of the server side, and based on the first encryption information, a first transmission channel between the client side and the server side can be established according to first decryption information obtained by decrypting the first encryption information after the client side receives the first encryption information.
And the client establishes a first transmission channel with the server according to the communication address of the server in the first decryption information.
In a specific implementation, a server and a client are in the same local area network, as shown in fig. 2, when multimedia data transmission between the server and the client is required, first encryption information obtained by encrypting a communication address of the server is broadcast to the local area networks where the server and the client are located, after receiving the broadcast first encryption information, the client may decrypt the first encryption information to obtain first decryption information, and further obtain a communication address of the server in the first decryption information, such as an internet Protocol address (ip) (internet Protocol address) address of the server, and the like, so that the client may establish a first transmission channel with the server based on the communication address of the server.
It should be noted that, when encrypting the communication address of the server, the server may use a first key agreed in advance with the client. Wherein the first key may be a pin (personal Identification number) code consisting of one or more characters.
For example, an encryption password, such as a key a, is agreed in advance between the client and the server, the server encrypts the IP address of the server using the key a, and broadcasts first encrypted information obtained by encryption to the local area network where the server is located, after receiving the broadcasted first encrypted information, the client in the local area network decrypts the first encrypted information using the key a, and thus the IP address of the server in the first decrypted information can be obtained, and based on this, a first transmission channel can be established between the client and the server according to the IP address of the server.
After the first transmission channel is established between the client and the server, the server may allocate client identification information, such as a client ID (identity document), to the client for uniquely characterizing the client in the network where the client is located, and certainly, the server also configures server identification information, such as a server ID, to the server for uniquely characterizing the server in the network where the server is located.
Based on this, in this embodiment, when the step 101 shares the first information by using the first transmission channel established between the client and the server, the following method may be specifically implemented, as shown in fig. 3:
step 301: the server side sends the server side identification information to the client side through the first transmission channel.
After the server distributes the client identification information to the client, the client identification information can be transmitted to the client through the first transmission channel, and at the moment, the server and the client both have the client identification information of the client; meanwhile, the server transmits the server identification information to the client through the first transmission channel, and both the server and the client have the server identification information of the server at the moment, so that the identification information is shared.
Step 302: the server and the client share respective port information through the first transmission channel.
The port information of the server and the port information of the client can be determined by negotiation between the server and the client based on a predetermined communication protocol, and after the port information is determined by negotiation, the server transmits the port information of the server to the client through a first transmission channel, and the client also transmits the port information of the client to the server through the first transmission channel, so that the server and the client can share the respective port information through the first transmission channel.
It should be noted that the predetermined Communication protocol may be a webRTC (WebReal-Time Communication) protocol for web page instant messaging, or the like. The identification information and the port information negotiated based on the communication protocol are protocol authentication information for realizing the communication protocol.
When the port information and the identification information of the server and the client are transmitted in the first transmission channel, the port information and the identification information can be encrypted by the first key and then transmitted, so that the security is improved. For example, when the server transmits the server identification information through the first transmission channel, the server identification information is encrypted by using the key a, then the server identification information encrypted by using the key a is transmitted to the client through the first transmission channel, and the client decrypts the server identification information by using the key a after receiving the server identification information; when the server transmits the client identification information through the first transmission channel, the client identification information is encrypted by using a key A, then the client identification information encrypted by the key A is transmitted to the client by using the first transmission channel, and the client decrypts the client identification information by using the key A after receiving the client identification information to obtain the client identification information;
for another example, when the server transmits the port information of the server through the first transmission channel, the port information of the server is encrypted by using the key a, then the port information encrypted by using the key a is transmitted to the client by using the first transmission channel, and the client decrypts the port information by using the key a after receiving the port information to obtain the port information of the server; when the client transmits the port information of the client through the first transmission channel, the port information is encrypted by using the key A, then the port information of the client encrypted by using the key A is transmitted to the server through the first transmission channel, and the server decrypts the port information by using the key A after receiving the port information to obtain the port information of the client.
In another implementation manner, in this embodiment, when the step 101 shares the first information by using the first transmission channel established between the client and the server, the method further includes the following steps, as shown in fig. 4:
step 303: the client and the server share the second encryption information through the first transmission channel.
The second encryption information is obtained by encrypting the second key through the first key, the first key is a key agreed in advance between the client and the server, and the second key is a key used for encrypting the multimedia data transmitted by the second transmission channel.
That is to say, in this embodiment, the first transmission channel established in a point-to-point manner shares the second key in an encrypted manner between the client and the server, and specifically, the second key may be negotiated and shared in a handshake protocol or the like, so that the multimedia data transmitted in the second transmission channel is encrypted by the second key, thereby further improving the security of data transmission.
Based on this, in this embodiment, when the step 102 creates the second transmission channel between the client and the server based on the first information, the following method may be specifically implemented:
and creating a second transmission channel between the client and the server based on the port information and the identification information of the client and the server respectively.
For example, the server encrypts the communication address of the server based on an agreed key a and then broadcasts encrypted first encrypted information in the local area network, the client decrypts the first encrypted information by using the key a after receiving the first encrypted information to obtain the communication address of the server, and then a first transmission channel is established between the client and the server through the communication address of the server, and then the client and the server can share respective identification information and port information by using the key a through the first transmission channel in an encrypted manner, and further a second transmission channel is established between the client and the server based on the identification information and the port information, and meanwhile, the client and the server can share a key B by using the key a through the first transmission channel in an encrypted manner, so that multimedia data can be encrypted and transmitted in the second transmission channel by using the key B between the client and the server, thereby improving the transmission security of the multimedia data between the client and the server.
Taking the transmission between a first terminal and a second terminal in a local area network as an example, the first terminal and the second terminal are both connected to the local area network in the home environment, and the processing capability of the first terminal is weaker than that of the second terminal. When a first terminal player needs to use a game application on a second terminal to play a game, first information is shared by using a first transmission channel established between the first terminal and the second terminal in a point-to-point mode, and a second transmission channel between the first terminal and the second terminal is created based on the first information, so that the second terminal can transmit multimedia data related to the game application to the first terminal through the second transmission channel.
As shown in fig. 5, taking a mobile phone of a game player as an example of a first terminal, and a second terminal as a computer loaded with a game application, the following details are provided:
the mobile phone end firstly receives first encrypted information broadcast by the computer in the local area network, after the mobile phone end uses the secret key A for decryption, the mobile phone end obtains the IP address of the computer, then a first transmission channel is established between the mobile phone and the computer based on the IP address of the computer, then the mobile phone and the computer share the authentication information between the mobile phone and the computer by using the secret key A through the first transmission channel to realize the webRTC protocol, such as port information of the mobile phone and the computer, identification information of the mobile phone and the computer, and the like, on the basis of the port information, the second transmission channel can be established, meanwhile, the mobile phone and the computer encrypt the transmission key B by using the key A through the first transmission channel, and then the secret key B is shared between the mobile phone and the computer, and then the computer can encrypt the game data stream by using the secret key B and transmit the encrypted game data stream to the mobile phone end through a second transmission channel so as to support a mobile phone player to play a game.
Taking a pad of a participant as a client (a first terminal), taking a server (a second terminal) as a conference server loaded with an intelligent conference system, as shown in fig. 6, where the pad and the conference server are both connected to a local area network of an office, and when a participant of the pad needs to log in a video conference by using the intelligent conference system on the conference server, the pad first receives first encryption information broadcast by the conference server in the local area network, and after the pad decrypts the information by using a key a, the pad obtains an IP address of the conference server, and further establishes a first transmission channel between the pad and the conference server based on the IP address of the conference server, and then the pad and the conference server share authentication information of the webRTC protocol between the pad and the conference server by using the key a through the first transmission channel, such as port information and respective identification information of the pad and the conference server, based on the above, a second transmission channel can be established, meanwhile, the pad and the conference server encrypt a transmission key B by using the key A through the first transmission channel, and then share the key B between the pad and the conference server, and then the conference server can encrypt the video conference data stream by using the key B and transmit the encrypted video conference data stream to the pad end through the second transmission channel, so as to support the pad participant to participate in the conference.
Referring to fig. 7, a schematic structural diagram of a transmission device provided in the second embodiment of the present disclosure is shown, where the transmission device may be configured at a client, such as a mobile phone used by a game player or a pad of a participant in a teleconference, or the device in the second embodiment may also be configured at a server, such as a computer configured with a game application or a conference server of a conference host in a teleconference. The technical scheme in the embodiment is mainly used for improving the data transmission safety between the client and the server.
Specifically, the apparatus in this embodiment may include the following units:
an information sharing unit 701, configured to share first information using a first transmission channel established between a client and a server;
a channel creating unit 702, configured to create a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel;
the first transmission channel is a transmission channel established in a point-to-point mode.
In view of the foregoing, in the transmission device provided in the second embodiment of the present application, the first transmission channel established between the client and the server in a point-to-point manner is used to share the first information, and the second transmission channel capable of transmitting the multimedia data is further established between the client and the server based on the first information, so that the secure transmission of the multimedia data from the server to the client is achieved. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
In an implementation manner, the channel creating unit 702 in this embodiment is further configured to: broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information; wherein the first decryption information at least comprises the communication address of the server.
Optionally, the first encryption information is obtained based on an encryption operation of an agreed first key.
Further, after the first transmission channel is established, the server side distributes client identification information to the client side.
In an implementation manner, the information sharing unit 701 is specifically configured to: the server side sends the server side identification information to the client side through the first transmission channel; the server and the client share respective port information through the first transmission channel, and the port information is determined based on a predetermined communication protocol; wherein the server identification information and the port information are encrypted by a first key in the first transmission channel.
In addition, the client and the server share second encryption information through the first transmission channel, the second encryption information is obtained by encrypting a second key through a first key, and the second key is used for encrypting the multimedia data.
In one implementation, the channel creating unit 702 is specifically configured to: and creating a second transmission channel between the client and the server based on the respective port information and the identification information of the client and the server.
It should be noted that, for the specific implementation of each unit in the present embodiment, reference may be made to the corresponding content in the foregoing, and details are not described here.
Referring to fig. 8, a schematic structural diagram of an electronic device according to a third embodiment of the present disclosure is provided, where the electronic device may be a client device, such as a mobile phone used by a game player or a pad of a participant in a teleconference. The technical scheme in the embodiment is mainly used for improving the data transmission safety between the client and the server.
Specifically, the electronic device in this embodiment may include the following structure:
a memory 801 for storing an application program and data generated by the operation of the application program;
a processor 802 for executing the application to implement: sharing first information by utilizing a first transmission channel established between the server side and the server side; creating a second transmission channel between the server side and the server side based on the first information so as to obtain the multimedia data transmitted by the server side through the second transmission channel; the first transmission channel is a transmission channel established in a point-to-point mode.
Alternatively, the electronic device in this embodiment may also be a server device, such as a computer configured with a game application or a conference server of a conference host in a teleconference. The technical scheme in the embodiment is mainly used for improving the data transmission safety between the client and the server. Specifically, the processor in the electronic device in this embodiment is configured to: sharing first information by utilizing a first transmission channel established between the client and the client; and creating a second transmission channel between the client side and the client side based on the first information so as to transmit the multimedia data to the client side through the second transmission channel.
According to the above scheme, in the electronic device provided in the third embodiment of the present application, the first transmission channel established between the client and the server in a point-to-point manner is used to share the first information, and the second transmission channel capable of transmitting the multimedia data is further established between the client and the server based on the first information, so that the secure transmission of the multimedia data from the server to the client is realized. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
Referring to fig. 9, a schematic structural diagram of a transmission system according to a fourth embodiment of the present application is provided, where the transmission system may include the following devices:
a client 901 and a server 902.
For example, the client may be a mobile phone used by a game player or a pad of a participant in a teleconference, and the like, and the server 902 may be a computer configured with a game application or a conference server of a conference host in a teleconference, and the like. The technical scheme in the embodiment is mainly used for improving the data transmission safety between the client and the server.
Specifically, a first transmission channel is established between the client 901 and the server 902, and the first transmission channel is established in a point-to-point manner and is based on:
the client 901 and the server 902 share first information by using a first transmission channel, and a second transmission channel between the client 901 and the server 902 is created based on the first information between the client 901 and the server 902, so that the server 902 can transmit multimedia data to the client 901 through the second transmission channel.
According to the scheme, in the transmission system provided by the fourth embodiment of the present application, the first transmission channel is established between the client and the server in a point-to-point manner and shares the first information, and then the second transmission channel capable of transmitting the multimedia data is established between the client and the server based on the first information, so that the secure transmission of the multimedia data from the server to the client is realized. Therefore, in the application, forwarding equipment similar to a signaling server does not need to be erected at the client or the server, but the first transmission channel between the client and the server is established in a point-to-point mode, so that first information capable of establishing the second transmission channel can be shared between the client and the server, the established second transmission channel can safely transmit multimedia data, and the safe data transmission between the client and the server is realized.
The following takes game streaming data transmission in a local area network as an example to illustrate the technical solution of the present application:
the technical scheme of the application is mainly applied to a home environment, namely, data transmission in a local area network is realized. Taking the server as a PC as an example, the WebRTC can support multiple platforms due to its characteristics, that is, the client can be a PC, a mobile phone, or a Pad. The client user can play the game at the server in a streaming mode.
The method comprises the steps that a condition is required before the WebRTC protocol is established, namely a security channel is used for transmitting a key, the method for transmitting an encryption key in the WebRTC protocol is rewritten, and transmission is performed in a point-to-point mode, as shown in FIG. 10, a P2P signaling server used for transferring the key, namely a P2Pserver, is removed, and therefore data can be directly transmitted in a local area network by using the WebRTC protocol.
The specific implementation is shown in the flowchart in fig. 11:
1. in a local area network, a server side broadcasts first Encryption information through exchange or routing equipment such as a router and the like in the local area network, the first Encryption information is obtained by encrypting an IP address of the server side by using a secret key A such as a PIN code, and an Encryption algorithm is an algorithm based on advanced Encryption standard AES (advanced Encryption Standard);
2. in the local area network, the client decrypts the first encrypted information by using the key A to obtain the IP address of the server, and then the client is linked to the server through the IP address of the server to establish a first transmission channel, such as a socket connection based on a TCP protocol.
3. The client and the server take over the corresponding interface of the original WebRTC signaling server, such as the ISignalingChannelInterface, and reload the application Programming interface (api) for receiving and transmitting data, such as: OnSignallingMessage and SendSignallingMessage, and the like.
4. The authentication information required by the WebRTC protocol and the key B for data transmission, such as the respective identification information of the client and the server, are exchanged between the client and the server through a first transmission channel, namely an encryption pipelineserverID、clientIDPort information, etc., as follows:
the server encrypts the identification information of the server by using the key A and transmits the identification information through an encryption pipeline, and the client decrypts the identification information by using the key A to obtain the identification information of the server;
the server side encrypts identification information distributed for the client side by using the key A and transmits the identification information through an encryption pipeline, and the client side decrypts the identification information by using the key A to obtain the identification information of the client side;
the server and the client mutually transmit negotiation data in a first transmission channel by using the key A so as to negotiate and share respective port information and a key B for data transmission.
5. After the key B is exchanged, the client and the server may use the key B to transmit the media data in the second transmission channel created based on the identification information and the port information in an encrypted manner.
It should be noted that, in this embodiment, the key B may be used to encrypt the transmission media data by using a predetermined encryption algorithm, for example, an elliptic Curve Digital Signature algorithm ecdsa (elastic current Digital Signature algorithm) based on a packet Transport Layer security Protocol dtls (data Transport Layer security) and a Secure Real-time Transport Protocol SRTP (Secure Real-time Transport Protocol).
It can be seen that, in the present application, the key and the data are transmitted in separate channels, the key is transmitted through the key transmission channel (the first transmission channel) and the authentication information of the data transmission channel is established, that is, the dependence of the P2P signaling server is removed, the authorization information of the WebRTC is transmitted in an encrypted channel manner, so that the key transmission channel is abolished after the data transmission channel (the second transmission channel) is established, and the secure streaming transmission is realized.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. The device disclosed by the embodiment corresponds to the method disclosed by the embodiment, so that the description is simple, and the relevant points can be referred to the method part for description.
Those of skill would further appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the various illustrative components and steps have been described above generally in terms of their functionality in order to clearly illustrate this interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present application.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present application. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the application. Thus, the present application is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.
Claims (10)
1. A method of transmission, comprising:
sharing first information by utilizing a first transmission channel established between a client and a server;
creating a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel;
the first transmission channel is a transmission channel established in a point-to-point mode;
the first transmission channel is established by:
and broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information.
2. The method of claim 1, the first decryption information comprising at least a communication address of the server.
3. The method of claim 2, wherein the first encryption information is derived based on an encryption operation of an agreed first key.
4. The method of claim 2, wherein the server allocates client identification information to the client after establishing the first transmission channel.
5. The method of claim 4, sharing the first information using a first transmission channel established between the client and the server, comprising:
the server side sends the server side identification information to the client side through the first transmission channel;
the server and the client share respective port information through the first transmission channel, and the port information is determined based on a predetermined communication protocol;
wherein the server identification information and the port information are encrypted by a first key in the first transmission channel.
6. The method according to claim 1 or 5, wherein the first information is shared by using a first transmission channel established between the client and the server, further comprising:
the client and the server share second encryption information through the first transmission channel, the second encryption information is obtained by encrypting a second key through a first key, and the second key is used for encrypting the multimedia data.
7. The method of claim 6, creating a second transmission channel between the client and the server based on the first information, comprising:
and creating a second transmission channel between the client and the server based on the respective port information and the identification information of the client and the server.
8. A method of transmission, comprising:
sharing first information by utilizing a first transmission channel established between a first terminal and a second terminal; the first terminal and the second terminal are in the same local area network, and the processing capacity of the first terminal is weaker than that of the second terminal;
creating a second transmission channel between the first terminal and the second terminal based on the first information so that the second terminal can transmit multimedia data to the first terminal through the second transmission channel; wherein the multimedia data is data related to a game application configured on the second terminal;
the first transmission channel is a transmission channel established in a point-to-point mode;
the first transmission channel is established by:
and broadcasting first encryption information in a network where the first terminal and the second terminal are located, so that the first terminal can establish a first transmission channel with the second terminal at least according to first decryption information obtained by decrypting the first encryption information.
9. A client, comprising:
a memory for storing an application program and data generated by the application program running;
a processor for executing the application to implement: sharing first information by utilizing a first transmission channel established between the server side and the server side; creating a second transmission channel between the server side and the server side based on the first information so as to obtain the multimedia data transmitted by the server side through the second transmission channel; the first transmission channel is a transmission channel established in a point-to-point mode;
the first transmission channel is established by:
and broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information.
10. A transmission system, comprising:
the system comprises a client and a server, wherein a first transmission channel is established between the client and the server, the first transmission channel is established in a point-to-point mode, and the system comprises:
the client and the server share first information by using the first transmission channel; the client and the server establish a second transmission channel between the client and the server based on the first information, so that the server can transmit multimedia data to the client through the second transmission channel;
the first transmission channel is established by:
and broadcasting first encryption information in the network where the server and the client are located, so that the client can at least establish a first transmission channel with the server according to first decryption information obtained by decrypting the first encryption information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011056912.2A CN112202882B (en) | 2020-09-29 | 2020-09-29 | Transmission method, client and transmission system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011056912.2A CN112202882B (en) | 2020-09-29 | 2020-09-29 | Transmission method, client and transmission system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112202882A CN112202882A (en) | 2021-01-08 |
| CN112202882B true CN112202882B (en) | 2022-03-25 |
Family
ID=74007097
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011056912.2A Active CN112202882B (en) | 2020-09-29 | 2020-09-29 | Transmission method, client and transmission system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112202882B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113014544B (en) * | 2021-01-25 | 2023-02-10 | 阳光凯讯(北京)科技有限公司 | Method and device for establishing centerless media link based on webRtc |
| CN115955358B (en) * | 2023-01-11 | 2023-05-02 | 北京唯科致远科技有限公司 | Data stream transmission system based on point-to-point communication |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105991691A (en) * | 2015-02-05 | 2016-10-05 | 中国电信股份有限公司 | Method, device and system for information transmission |
| CN109309866A (en) * | 2017-07-27 | 2019-02-05 | 腾讯科技(深圳)有限公司 | Image processing method and device, storage medium |
| CN110535871A (en) * | 2019-09-09 | 2019-12-03 | 焦点教育科技有限公司 | A kind of classroom real-time video projecting method and system based on WebRTC |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| FR2862172B1 (en) * | 2003-11-10 | 2006-02-03 | Cit Alcatel | METHOD AND SYSTEM FOR TRANSMITTING / RECEIVING MULTIMEDIA CONTENT VIA A RADIO COMMUNICATION NETWORK |
| CN102546559B (en) * | 2010-12-29 | 2015-10-28 | 北京新媒传信科技有限公司 | The method, apparatus and system of end-to-end transmission data in limited network |
| US9380030B2 (en) * | 2014-05-20 | 2016-06-28 | Avay Inc. | Firewall traversal for web real-time communications |
| EP3292675B1 (en) * | 2015-05-05 | 2023-07-12 | Ipalive AB | Establishing media paths in real time communications |
| CN109274634B (en) * | 2017-07-18 | 2021-06-11 | 腾讯科技(深圳)有限公司 | Multimedia communication method and device, and storage medium |
-
2020
- 2020-09-29 CN CN202011056912.2A patent/CN112202882B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105991691A (en) * | 2015-02-05 | 2016-10-05 | 中国电信股份有限公司 | Method, device and system for information transmission |
| CN109309866A (en) * | 2017-07-27 | 2019-02-05 | 腾讯科技(深圳)有限公司 | Image processing method and device, storage medium |
| CN110535871A (en) * | 2019-09-09 | 2019-12-03 | 焦点教育科技有限公司 | A kind of classroom real-time video projecting method and system based on WebRTC |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112202882A (en) | 2021-01-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11822626B2 (en) | Secure web RTC real time communications service for audio and video streaming communications | |
| JP6312616B2 (en) | Secure instant messaging | |
| US9055047B2 (en) | Method and device for negotiating encryption information | |
| KR100832893B1 (en) | A method for the access of the mobile terminal to the WLAN and for the data communication via the wireless link securely | |
| JP4081724B1 (en) | Client terminal, relay server, communication system, and communication method | |
| US8126001B2 (en) | Method and apparatus for multicasting contents between devices in networks | |
| Westerlund et al. | Options for securing RTP sessions | |
| CN111756529B (en) | Quantum session key distribution method and system | |
| KR20080103599A (en) | Method, system, subscriber equipment and multi-media server for digital copylight protection | |
| KR101297936B1 (en) | Method for security communication between mobile terminals and apparatus for thereof | |
| MX2008002829A (en) | Method and apparatus for distribution and synchronization of cryptographic context information. | |
| CN112202882B (en) | Transmission method, client and transmission system | |
| KR20180130203A (en) | APPARATUS FOR AUTHENTICATING IoT DEVICE AND METHOD FOR USING THE SAME | |
| WO2009082950A1 (en) | Key distribution method, device and system | |
| CN101980500B (en) | Digital signature-based point-to-point flow control method and system | |
| US20070091914A1 (en) | Secure transfer of data | |
| CN112235320B (en) | Cipher-based video networking multicast communication method and device | |
| WO2009094812A1 (en) | Method and apparatus for implementing the security of point to point media stream | |
| KR101215802B1 (en) | Method of providing a contents service in a p2p network | |
| Yeun et al. | Practical implementations for securing voip enabled mobile devices | |
| CN113114644B (en) | SIP architecture-based multi-stage cross-domain symmetric key management system | |
| US20240097903A1 (en) | Ipcon mcdata session establishment method | |
| CN115102698A (en) | Quantum encrypted digital signature method and system | |
| JP2023138927A (en) | System and method for managing data-file transmission and access right to data file | |
| CN115766151A (en) | Multi-party communication method and system considering dual identities |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |